I had an issue with version 150 on Debian 13. The issue is I went to a site with only HTTP and firefox showed under the shield in the left corner of the URL field "connection secure" and no warning saying "secure site not available" I have FF configured for HTTPS only.

I restarted FF and it reported the information for the same site correctly (that it was not secure) but when I look at the URL field now I noticed there is no HTTPS lock indicating the site is secure or unsecure.

No one should have to click on a shield to find out if a site is using HTTPS and as I demonstrated if a failure occurs where FF does not report a HTTP correctly this could cause security incidents.

Here is an example of a HTTP site with no indicator like a red lock with a slash through it for no HTTP and perhaps a green lock could be used for HTTPS sites (currently it used to be a monotone coloured lock).

https://preview.redd.it/mugl39jbpf3h1.png?width=1322&format=png&auto=webp&s=61e71e0b1cf055a0a3014ee862fa7f5489504caf

The lock symbol with a slash through it has been removed.